VYPR

CX-One

by Omron

CVEs (11)

  • CVE-2024-31413MedMay 1, 2024
    Omron
    Sysmac Studio
    risk 0.38cvss 5.9epss 0.00

    Free of pointer not at start of buffer vulnerability exists in CX-One CX-One CXONE-AL[][]D-V4 (The version which was installed with a DVD ver. 4.61.1 or lower, and was updated through CX-One V4 auto update in January 2024 or prior) and Sysmac Studio SYSMAC-SE2[][][] (The version…

  • CVE-2022-21137Jan 14, 2022
    Omron
    CX-One
    risk 0.00cvss epss 0.09

    Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.

  • CVE-2021-27413May 13, 2021
    Omron
    CX-One
    risk 0.00cvss epss 0.10

    Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code.

  • CVE-2020-27257Feb 9, 2021
    Omron
    CX-One
    risk 0.00cvss epss 0.02

    This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices.

  • CVE-2020-27261Feb 9, 2021
    Omron
    CX-One
    risk 0.00cvss epss 0.08

    The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

  • CVE-2020-27259Feb 9, 2021
    Omron
    CX-One
    risk 0.00cvss epss 0.03

    The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may allow an attacker to remotely execute arbitrary code.

  • CVE-2018-19027Jan 30, 2019
    Omron
    CX-One
    risk 0.00cvss epss 0.01

    Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

  • CVE-2018-18989Dec 4, 2018
    Omron
    CX-One
    risk 0.00cvss epss 0.02

    In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit…

  • CVE-2018-7514Apr 17, 2018
    Omron
    CX-One
    risk 0.00cvss epss 0.00

    Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator…

  • CVE-2018-7530Apr 17, 2018
    Omron
    CX-One
    risk 0.00cvss epss 0.00

    Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator…

  • CVE-2018-8834Apr 17, 2018
    Omron
    CX-One
    risk 0.00cvss epss 0.00

    Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator…